HPE Community
Operating System - HP-UX
1845096 Members
2286 Online
110233 Solutions
New Discussion

roor permission

 
Jayasuntar
Valued Contributor

‎02-04-2006 11:48 PM

‎02-04-2006 11:48 PM

roor permission

Hi all,

As a sysadm, for what are all the purpose example:- checking syslog, monitoring cluster, and pkg logs, -- we need root or equalent permission?

Regards

Jay
0 Kudos
7 REPLIES 7
Shivam Tiwari
Honored Contributor

‎02-05-2006 12:08 AM

‎02-05-2006 12:08 AM

Re: roor permission

Hi Jaya,

ALmost for all viewing commands you dont need root permission but if you want to modify system level application you need root or equivalent permission.

HTH,

Shivam Tiwari
Never say No. Say I will Do it........
0 Kudos
Jayasuntar
Valued Contributor

‎02-05-2006 12:16 AM

‎02-05-2006 12:16 AM

Re: roor permission

Hi,

I want to monitor, cluster, syslog, last login successful and failiure attempts, sometimes even changing the user passwd.

Whether is there anyway other than having root equalent user?..

Regards

Jay
0 Kudos
Shivam Tiwari
Honored Contributor

‎02-05-2006 12:22 AM

‎02-05-2006 12:22 AM

Re: roor permission

Jaya,

You cant have another root user (replica) but what you can do is to assing all the root privelages to a particular but still there will be difference.

You can install any sudo software to give users provileges even at file and directory level that is not possible with the default UNIX commands or to cumboresome to perform. Here you can get the more info
http://www.aplawrence.com/Basics/sudo.html

HTH,

SHivam Tiwari
Never say No. Say I will Do it........
0 Kudos
DCE
Honored Contributor

‎02-05-2006 01:50 AM

‎02-05-2006 01:50 AM

Re: roor permission



There are a couple of ways to grant limited root access. One of the most common is to install and configure sudo. This app is quite versitile and you can assign specific commands to an id

It can be downloaded from
http://gatekeep.cs.utah.edu/hppd/hpux/

Another way to grant limited root privledges is via restricted SAM. You can configure SAM (by running sam -r) to give users limited use of features in SAM. This is not as secure as sudo though.


0 Kudos
Indrajit_1
Valued Contributor

‎02-05-2006 03:55 AM

‎02-05-2006 03:55 AM

Re: roor permission

Hi;

U need to configure sudo and assign permission for dedicated user to executed those command.

Try this

#visudo
#/usr/local/sbin/visudo

Read the script carefully. u need to assign permission for the user.

for example..

%unix ALL = ALL

user_id Server_name=/usr/sbin/useradd
user_id Server_name=/usr/bin/passwd

etc .. etc..

save and come out...


Hope this will help u to resolve ur issue.


Cheers
Indrajit
Never Ever Give Up
0 Kudos
Shivam Tiwari
Honored Contributor

‎02-05-2006 04:19 AM

‎02-05-2006 04:19 AM

Re: roor permission

Indrajit you are right but Jaya dont get confused if you run these commands and dont get anything as before running these commands you need to install apropriate sudo software.

There are tons of them available you need to install any one of them (they are for free) as they provide almost same funcionality.

HTH,

Shivam Tiwari
Never say No. Say I will Do it........
0 Kudos
Jayasuntar
Valued Contributor

‎02-05-2006 07:02 PM

‎02-05-2006 07:02 PM

Re: roor permission

Thks guys..

Got the required answers..

Regards

Jay
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.